48 matches found
GHSA-R45X-GHR2-QJXC Duplicate Advisory: `#[zeroize(drop)]` doesn't implement `Drop` for `enum`s
Duplicate Advisory This advisory is a duplicate of GHSA-c5hx-w945-j4pq. This link is preserved to maintain external references. Original Description Affected versions of this crate did not implement Drop when zeroizedrop was used on an enum. This can result in memory not being zeroed out after...
blst (=0.3.7), zeroize (>=0.6.0 <=0.7.0) potentially affected by CVE-2021-45706 via zeroize_derive (>=0.1.0 <=0.7.0)
zeroizederive CARGO version =0.1.0, =0.6.0, =0.7.0 Source cves: CVE-2021-45706 Source advisory: OSV:GHSA-C5HX-W945-J4PQ...
Rust 安全漏洞
Rust, a general-purpose, compiled programming language from the Mozilla Foundation, has a security vulnerability in versions prior to Rust zeroizederive crate 1.1.1, which stems from the fact that deleted memory is not set to zero. No details of the vulnerability are currently available...
`#[zeroize(drop)]` doesn't implement `Drop` for `enum`s
Affected versions of this crate did not implement Drop when zeroizedrop was used on an enum. This can result in memory not being zeroed out after dropping it, which is exactly what is intended when adding this attribute. The flaw was corrected in version 1.2 and zeroizedrop on enums now properly...
blst (=0.3.7), zeroize (>=0.6.0 <=0.7.0) potentially affected by CVE-2021-45706 via zeroize_derive (>=0.1.0 <=0.7.0)
zeroizederive CARGO version =0.1.0, =0.6.0, =0.7.0 Source cves: CVE-2021-45706 Source advisory: OSV:RUSTSEC-2021-0115...
RUSTSEC-2021-0115 `#[zeroize(drop)]` doesn't implement `Drop` for `enum`s
Affected versions of this crate did not implement Drop when zeroizedrop was used on an enum. This can result in memory not being zeroed out after dropping it, which is exactly what is intended when adding this attribute. The flaw was corrected in version 1.2 and zeroizedrop on enums now properly...
CVE-2020-1618
On Juniper Networks EX and QFX Series, an authentication bypass vulnerability may allow a user connected to the console port to login as root without any password. This issue might only occur in certain scenarios: • At the first reboot after performing device factory reset using the command...
Authentication flaw
On Juniper Networks EX and QFX Series, an authentication bypass vulnerability may allow a user connected to the console port to login as root without any password. This issue might only occur in certain scenarios: • At the first reboot after performing device factory reset using the command...